CLAIMS: 

1. A system for remotely and transparently managing security 
associations of Internet Protocol Security, the system comprising: 

an application device, said application device comprising at least one 
management client for issuing security association management requests; 

a service device comprising an Internet Protocol Security service means 
for providing one or more Internet Protocol Security services, and a 
management server for receiving said security association management 
requests issued from said at least one management client and for responding, 
in connection with said Internet Protocol Security service means, to said 
security association management requests received at said management server; 
and 

a communication network for connecting said application device to said 
service device. 

2. The system according to claim 1, wherein said application device 
further comprises an interface means for providing an interface for 
communicating between said at least one management client associated with 
said application device and said management server. 

3. The system according to claim 1, wherein said security association 
management requests include at least one of adding requests for adding 
security associations, deleting requests for deleting security associations, and 
querying requests for querying about security associations. 

4. The system according to claim 2, wherein said interface means are 
arranged to use sockets for communication with said management server. 

5. The system according to claim 2, wherein said interface means 
includes data structures used in communication between said management 
client and said management server. 
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6. The system according to claim 2, wherein said interface means are 
implemented as a software library linked dynamically or statistically into a 
corresponding management client. 

7. The system according to claim 1, wherein said Internet Protocol 
Security service means and said management server are arranged to use a local 
communication channel for communications between said Internet Protocol 
Security service means and said management server. 

8. The system according to claim 1, wherein at least one application 
device comprises two or more management clients, at least two of said 
management clients use different session key management protocols. 

9. The system according to claim 1, wherein said communication 
network comprises a Local Area Network. 

10. A method for remotely and transparently managing security 
associations of Intemet Protocol Security, the method comprising the steps of: 

providing one or more Intemet Protocol Security services in a service 
device; 

issuing security association management requests from an application 
device, said application device being connected to said service device by a 
communication network; 

receiving in said service device said security association management 
requests issued from said application device; and 

responding, in connection with an Intemet Protocol Security service, to 
said security association management requests received in said service device. 

11. The method according to claim 10, wherein at least one of said 
security association management requests issued from an application device 
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and corresponding responses are communicated via an interface associated with 
said application device. 

12. The method according to claim 10, wherein said security 
association management requests include at least one of adding requests for 
adding security associations, deleting requests for deleting security 
associations, and querying requests for querying about security associations. 
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